Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Wanet Telecoms Ltd on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Active directory question

Status
Not open for further replies.
EddieRWB

EddieRWB

IS-IT--Management
Apr 5, 2005
48
US
In active directory we set our OU's up by building.

Problem is when we have a user/group of users that moves between buildings it is easy to move the user account to that different OU.
But the main issue is our computer accounts aren't named using the users name/last name which would make it easy to find in AD. We use the computer serial number as the computer name.
Is there a tool that would be able to locate which computer account is associated to which user account so moving them in AD would be easy? Thanks for your input on this one.
 
Sort by date Sort by votes
I don't think there's a one-to-one mapping of computer accounts to user SIDs in AD, but I am by no means an expert on writing queries for AD.

[purple]
SnoopFrogg
MCSA+Security - Windows Server 2003
[/purple]
 
Upvote 0 Downvote
I would suggest the Quest reporter tool. It will allow you to associate users to machines and also tell you what profiles are on the machines. You can also do this with SMS.

On a side note, I think there is a property you may be able to assign on a user object that is called something like "primary workstation". If you can do it, you could use that for your search/move criteria.
 
Upvote 0 Downvote
fill in the description in the userprofile

lars

Network admin for worldwide freight forwarders company.
mcp mcsa\: Messaging mcse -2003
 
Upvote 0 Downvote
I think Lars' suggestion is the most reasonable. Querying the description field is fairly straight-forward.

[purple]
SnoopFrogg
MCSA+Security - Windows Server 2003
[/purple]
 
Upvote 0 Downvote
All good ideas, one main hitch is AD now has 3000 users & computer accounts broken up between 7 different building OU's with blank description fields migrated from Novell. I wonder if there would be a script that could do this?
 
Upvote 0 Downvote
yes a script could do it BUT you would need some type of source that linked username to machine name in order to insert it into AD. For example, if you have an access database that has this stuff recorded, it could work as an input to script against.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

julis2103
  • Locked
  • Question
Active Directory
Replies
0
Views
248
julis2103
julis2103
goombawaho
  • Locked
  • Question
Microsoft Azure Active Directory - Backup Admin Account 1
Replies
2
Views
987
goombawaho
goombawaho
geneg28
  • Locked
  • Question
Active Directory and Linux Servers
Replies
0
Views
232
geneg28
geneg28
axilleas
  • Locked
  • Question
Windows 2012 R2 Active directory problem after applying GPO
Replies
7
Views
527
technome
technome
edgar28
  • Locked
  • Question
Question on Network cards - Windows Server 2019
Replies
1
Views
301
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top